rpms / sos

Clone
Source Code
GIT

Blame SOURCES/sos-bz1162788-ovirt-engine-remove-password-leak.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-atomic c7-beta c8 c8-beta c8s c9 c9-beta
  1.   50bf97db60d61959d38b77295af0d4159423862b
  2.   SOURCES
  3.   sos-bz1162788-ovirt-engine-remove-password-leak.patch
Blob History Raw
3d26a2 
From 0aec209ec6870c6ec3cbb6e2209d35adb2b62009 Mon Sep 17 00:00:00 2001
3d26a2 
From: Sandro Bonazzola <sbonazzo redhat com>
3d26a2 
Date: Tue, 16 Dec 2014 12:29:57 +0000
3d26a2 
Subject: [PATCH] [ovirt] remove ovirt-engine setup answer file password leak
3d26a2
3d26a2 
Signed-off-by: Sandro Bonazzola <sbonazzo@redhat.com>
3d26a2 
Signed-off-by: Bryn M. Reeves <bmr@redhat.com>
3d26a2 
---
3d26a2 
 sos/plugins/ovirt.py | 15 +++++++++++++++
3d26a2 
 1 file changed, 15 insertions(+)
3d26a2
3d26a2 
diff --git a/sos/plugins/ovirt.py b/sos/plugins/ovirt.py
3d26a2 
index b169b90..407c918 100644
3d26a2 
--- a/sos/plugins/ovirt.py
3d26a2 
+++ b/sos/plugins/ovirt.py
3d26a2 
@@ -171,4 +171,19 @@ class Ovirt(Plugin, RedHatPlugin):
3d26a2 
                 r'{key}=********'.format(key=key)
3d26a2 
             )
3d26a2
3d26a2 
+        # Answer files contain passwords
3d26a2 
+        for key in (
3d26a2 
+            'OVESETUP_CONFIG/adminPassword',
3d26a2 
+            'OVESETUP_CONFIG/remoteEngineHostRootPassword',
3d26a2 
+            'OVESETUP_DWH_DB/password',
3d26a2 
+            'OVESETUP_DB/password',
3d26a2 
+            'OVESETUP_REPORTS_CONFIG/adminPassword',
3d26a2 
+            'OVESETUP_REPORTS_DB/password',
3d26a2 
+        ):
3d26a2 
+            self.do_path_regex_sub(
3d26a2 
+                r'/var/lib/ovirt-engine/setup/answers/.*',
3d26a2 
+                r'{key}=(.*)'.format(key=key),
3d26a2 
+                r'{key}=********'.format(key=key)
3d26a2 
+            )
3d26a2 
+
3d26a2 
 # vim: expandtab tabstop=4 shiftwidth=4
3d26a2 
--
3d26a2 
1.8.3.1
3d26a2

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation